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MS: Mobile Station 
ME: Mobile Equipment 
WML: Wireless Markup 
Language 

Ks: Secret/Private Key 
Al: symmetric /assymmetric 
Cryptographic algorithm 
Ap: SAT application 



(57) Abstract: The present invention relates to a method and an arrangement for performing secure transactions during an informa- 
tion dialogue between a mobile terminal and a WAP server in a mobile network. The dialogue is made by using USSD. According 
to the invention there is provided a SAT application on the SIM card of the terminal that signs and encrypts data which are to be 
transferred in a secure way. 
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SAT BACK CHANNEL SECURITY SOLUTION FOR MOBILE TERMINALS USING USSD 

The present invention relates to mobile communication, in 
particular security solutions for mobile terminals using 
5 USSD (Unstructured Supplementary Service Data) . 

BACKGROUND 

For mobile terminals not supporting WAP, e.g. most mobile 
10 phones at the moment, there exist the possibility of 
viewing WAP pages through USSD. In other words, a 
simulation of a WAP (Wireless Application Protocol) 
information dialogue can be made by using the USSD 
capabilities of a Mobile Terminal. The WAP WML (Wireless 
15 Markup Language) is browsed in a proxy in the network, and 
the display of the terminal is made for showing the correct 
message by sending the equivalent of a "screen dump". WML 
responses are put together by the proxy from the characters 
entered by the user on the keypad of the Mobile Terminal. 
20 This is summarised in Figure 1 as follows: 

1 . The WML server sends the content of a WML page to the 
Proxy 

25 2 . The Proxy decomposes the WML page onto USSD 

(Unstructured Supplementary Service Data) and sends the 
data to the ME (Mobile Equipment) 

3. The ME sends the received data to the display, which 
30 presents said data to the user 

4 . If an answer from the user is requested, then the user 
can enter it to the keypad, which forwards the answer to 
the ME 
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5 . The ME sends the input to the proxy 
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6. The proxy assembles the received input into WML format 
and delivers it to the WML server 

No security feature except for unencrypted passwords is 
available in this solution- It is not possible to have a 
secure transaction, i.e. encrypted message exchange in this 
architecture . 

State of the art 

As mentioned above, the only security feature that exists 
is the unencrypted passwords. This security feature is 
implemented in the SAT applications, which implement the 
information browsing . 

Problem 

The problem with USSD based browsing as described above, is 
that the level of security is too low for higher values. As 
the password is communicated unencrypted, it can be 
discovered during the transfer. Another problem is that the 
system is awkward in use. Each time a secure transaction is 
to be performed, the WML server prompts the user for a 
password, which password has to be entered manually. The 
password has to be remembered by the user, possibly in 
addition to a number of passwords for other applications. 

The in ven t i on 

It is therefore an object of the present invention to 
provide a method for USSD based browsing, which allows 
transactions to be performed at a security level hitherto 
unknown. It is another object of the present invention that 
said transactions should be easy to perform from the users 
point of view, and if desired, made fully transparent to 
the user. 
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These objects are satisfied in a method as specified in the 
appended patent claims. 

The drawings 

Figure 1 illustrates the simulation of a WAP information 
dialogue using USSD (prior art) . 

Figure 2 illustrates a secure WAP exchange according to the 
invention using an SAT back channel. 

Description of the inventive solution 



For SAT (SIM Application Toolkit (ETSI 11.14)) enabled 
15 phones, the following solution is suggested. 

As shown in Figure 2, a secret/private key is stored on the 
SIM card. Also an algorithm for signing data using a 
symmetric or an asymmetric technique, as well as an 
20 application handling the dialogue with the user and the 
signing of data is stored on the SIM card. 

l.When information browsing through the mechanism 

described above and in Figure 1, has reached a point 
25 where a secure transaction should be established, for 

example the WML server asking explicitly for a secure 
transaction. 

2 The USSD dialogue is terminated. Instead the proxy 
30 " enters the details of the transaction to be secured into 
an SMS , and sends it to the SIM card of the Mobile 
Terminal where the SAT application is activated. 
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3. The application using SAT commands shows the details of 
the transaction to the user, and prompts for an "OK" to 
the transaction. 
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4. If the user agrees (optionally by entering a PIN), the 
application signs the data (or a hash of the data) with 
the secret/private key using the correct algorithms. 



5 5. The signed data is then returned to the proxy by using 
SMS or USSD as a bearer, 

6. Then the proxy either verifies the signature or passes 
it on to the appropriate instance that shall handle the 
10 verification. 

Merits of the invention 



A very high level of security is achieved in combination 
15 with a very flexible information browsing solution. 



Since it only has to handle signing of data and no 
information or menu handling, the application on the SIM 
card can be made very thin and flexible. Thus, it can be 
20 made to work in many different applications. 

The system handling the information browsing, and the 
system handling the security of the transactions are 
separated. They can be updated, changed etc. independently. 
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Abbr e vi a tions 



ETSI 
HDML 



HTML 



PIN 
Proxy 



Application An application consists of a set of security 
mechanisms, files, data and protocols 
(excluding transmission protocols) 
European Telecommunication Standard Institute 
Hand-held Device Markup Language 
An abbreviated version of HTML designed to 
enabling wireless pagers, cellular phones and 
other hand-held devices to obtain Web pages 
HyperText Markup Language 

The document format used on the World Wide 
Web. Web pages are built with HTML tags or 
codes embedded in the text. HTML defines the 
page layout, fonts and graphic elements, as 
well as the hypertext links to other documents 
on the Web. 

Personal Identification Number 
It is also called a "proxy server" or 
"application level gateway". It is an 
application that breaks the connection between 
the sender and the receiver. All input is 
forwarded to a different port, closing a 
straight path between two networks and 
preventing a hacker from obtaining internal 
addresses and details of a private network. 
SIM Application Toolkit 

SAT is a set of applications and related 
procedures, which may be used during a GSM 
session . 

Subscriber Identity Module (Mobile) 
Short Message Service 

Unstructured Supplementary Service Data 
USSD is a mechanism that allows user 
interaction between GSM Public Land Mobile 
Network applications and a Mobile Station in a 
transparent way through the network. 



SAT 



SIM 
SMS 
USSD 
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WAP Wireless Application Protocol 

WAP is a wireless standard from Motorola, 
Ericsson and Nokia for providing mostly 
cellular phones with access to e-mail and 
text-based Web pages. WAP uses the Wireless 
Markup Language (WML) , which is the WAP 
version of HDML. 
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Patent claims 

1. Method for performing a secure transaction during an 
information dialogue between a mobile terminal and a server 

5 in a network, 

characterised in that 

• said server supporting WML, e.g. a WAP server 

10 • said information dialogue is simulated by using USSD 
. the server sends the content of a WML page to a proxy 

• the proxy decomposes the WML page onto USSD and sends 
15 the data to the mobile terminal 

• the mobile terminal sends the received data to the 
display, which presents said data to the user 
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• when information browsing has reached a point where a 
secure transaction should be established, the USSD 
dialogue is terminated 

. the proxy enters the details of the transaction to be 
secured into an SMS and sends it to the SIM card of the 
mobile terminal 

• a SAT application is activated in the mobile terminal 

30 • the application shows the details of the transaction to 
the user and prompts for an "OK" to the transaction 

. if the user agrees, the application signs the data with 
a secret/private key 

35 

• the signed data is returned to the proxy 

• the proxy has the signature verified 
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8 

• the proxy assembles the signed data into WML format and 
delivers them to the server, 

5 2. Method according to claim 1, 

characterised in that said step of 
agreeing to the transaction involves entering a PIN code. 

3. Method according to claim 1 or 2, 

10 characterised in that said data is hash 
coded before signing. 

4. Method according to claim 1-3, 

characterised in that the signed data is 
15 returned to the proxy by using SMS as a bearer. 

5. Method according to claim 1-3, 

characterised in that the signed data is 
returned to the proxy by using USSD as a bearer. 

20 

6. Method according to one of the preceding claims, 
characterised in that the signed data is 
verified by the proxy. 

25 7. Method according to one of the preceding claims, 

characterised in that the signed data is 
passed on to an external instance for verification by the 
proxy . 

30 8. Arrangement for performing a secure transaction during 
an information dialogue between a mobile terminal and a 
server in a network, 

characterised in that 

35 • said server being a WAP server supporting WML, said 
information dialogue is simulated by using USSD 
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• the server is arranged to transfer the content of a WML 
page to a proxy 

• the proxy decomposes the WML page onto USSD and sends 
5 the data to the mobile terminal 

• the mobile terminal is arranged to present the received 
data to the user on a display 



10 • said USSD dialogue is terminated when a secure 
transaction is to be established 

• the proxy enters the details of the transaction to be 
secured into an SMS and sends it to the SIM card of the 

15 mobile terminal 

• there i.s installed a SAT application on said SIM card 

• said application is arranged to show the details of the 
20 transaction for the user and prompt for an "OK" to the 

transaction 

• if the user agrees, the application signs the data with 
a secret /private key 

25 

• the signed data is returned to the proxy 

• the proxy has verified the signature 

30 • the proxy assembles the signed data into WML format and 
delivers it to the server. 



9. Arrangement according to claim 8, 

characterised in that said SAT application 
35 is arranged to prompt the user for entering a PIN code. 
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10. Arrangement according to claim 8 or 9, 

characterised in that said SAT application 
is arranged to hash code said data before signing. 

5 11. Arrangement according to claim 8-10, 

characterised in that the signed data is 
returned to the proxy by using SMS as a bearer. 

12. Arrangement according to claim 8-10, 

10 characterised in that the signed data is 
returned to the proxy by using USSD as a bearer. 

13. Arrangement according to one of the claims 8-12, 
characterised in that the proxy is 

15 arranged to verify the signed data. 

14. Arrangement according to one of the claims 8-12, 
characterised in that the proxy is 
arranged to pass the data to an external instance for 

20 verification. 
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